Package Release Info

libsoup2-2.74.3-160000.2.2

Update Info: Base Release
Available in Package Hub : 16.0

platforms

AArch64
ppc64le
s390x
x86-64

subpackages

libsoup-2_4-1

libsoup2-devel

libsoup2-lang

typelib-1_0-Soup-2_4

Change Logs

* Wed Jun 18 2025 mgorse@suse.com

- Add libsoup-CVE-2025-4945.patch: add value checks for date/time
  parsing (boo#1243314 CVE-2025-4945).

* Wed May 28 2025 mgorse@suse.com

- Add more CVE fixes:
  + libsoup-CVE-2025-32913.patch (boo#1241162 boo#1241238
    CVE-2025-32913 CVE-2025-32911)
  + libsoup-CVE-2025-32910.patch (boo#1241252 CVE-2025-32910)
  + libsoup-CVE-2025-32906.patch (boo#1241263 CVE-2025-32906)
  + libsoup-CVE-2025-32912.patch (boo#1241214 CVE-2025-32912)
  + libsoup-CVE-2025-32909.patch (boo#1241226 CVE-2025-32909)
  + libsoup-CVE-2025-4948.patch (boo#1243332 CVE-2025-4948)
  + libsoup-CVE-2025-4969.patch (boo#1243423 CVE-2025-4969)

* Tue Apr 29 2025 mgorse@suse.com

- Add more CVE fixes:
  + c9083869.patch (boo#1241686 CVE-2025-46420)
  + libsoup-CVE-2025-32914.patch (boo#1241164 CVE-2025-32914)
  + libsoup-CVE-2025-32907.patch (boo#1241222 CVE-2025-32907)
  + libsoup-CVE-2025-46421.patch (boo#1241688 CVE-2025-46421)

* Fri Apr 18 2025 mgorse@suse.com

- Add more CVE fixes:
  + ef6c4bf6.patch (boo#1240750 CVE-2025-2784)
  + 96c22b67.patch (boo#1240750 CVE-2025-2784)
  + 19124679.patch (boo#1240752 CVE-2025-32050)
  + a5b86bfc.patch (boo#1240756 CVE-2025-32052)
  + 5739a090.patch (boo#1240757 CVE-2025-32053)

* Fri Apr 04 2025 bjorn.lie@gmail.com

- Increase test timeout for all arches except x86_64 and run tests
  again should they fail the first time, the testsuite is flaky.

* Wed Apr 02 2025 bjorn.lie@gmail.com

- Increase test timeout on s390x. The http2-body-stream test can be
  slow and sometimes times out in our builds.

* Wed Nov 13 2024 mgorse@suse.com

- Add 4c9e75c6.patch: fix an intermittent test failure
  (glgo#GNOME/libsoup#399).

* Tue Nov 12 2024 mgorse@suse.com

- Add 04df03bc.patch: strictly don't allow NUL bytes in headers
  (boo#1233285 CVE-2024-52530 glgo#GNOME/libsoup#377).
- Add libsoup-CVE-2024-52532.patch: websocket: Process the frame as
  soon as we read data (boo#1233287 CVE-2024-52532).
- Add 29b96fab.patch: websocket-test: disconnect error copy after
  the test ends (glgo#GNOME/libsoup#391).
- Add a35222dd.patch: be more robust against invalid input when
  parsing params (boo#1233292 CVE-2024-52531
  glgo#GNOME/libsoup!407).

* Thu Dec 14 2023 dimstar@opensuse.org

- Add ced3c5d8.patch: Fix build with libxml2-2.12.0 and clang-17.

* Mon Jul 31 2023 bjorn.lie@gmail.com

- Add upstream bug fixes:
  + 4d12c3e5.patch: lib: Add g_task_set_source_tag() everywhere
  + 48b3b611.patch: lib: Add names to various GSources
- Drop no longer valid translation-update-upstream BuildRequires
  and macro.
- Use ldconfig_scriptlets macro for post(un) handling.